设为首页收藏本站
切换到宽版

UltraDebug

 找回密码
 立即注册

QQ登录

只需一步,快速开始

debug排错 游戏安全 .net逆向 web逆向 移动端口
网络配置 Linux 系统底层 Python 易语言 编程工具
Delphi 脚本 JavaScript PHP Vue.JS
辅助工具 dbg插件 系统软件 Windows
搜索
热搜: A C D R G Y M Z X S P
公益项目,接受捐赠
UltraDebug»论坛 安全A1区 +DeBug调试`🤖 gdb插件 pwngdb+pwndbg、gef、peda切换脚本
返回列表 发帖
查看: 2380|回复: 0
收起左侧

[原创] gdb插件 pwngdb+pwndbg、gef、peda切换脚本

[复制链接]
OscarViolet
OscarViolet

主题

0

回帖

UD

新手上路

UID
76
积分
25
注册时间
2022-7-31
最后登录
1970-1-1
2022-8-10 23:21:52 | 显示全部楼层 |阅读模式

title: gdb插件配置

参考链接: https://blog.csdn.net/qq_39153421/article/details/115386527

https://blog.csdn.net/weixin_43092232/article/details/105648769

安装pwngdb

cd ~/
git clone https://github.com/scwuaptx/Pwngdb.git

其支持的命令如下

  • libc : Print the base address of libc
  • ld : Print the base address of ld
  • codebase : Print the base of code segment
  • heap : Print the base of heap
  • got : Print the Global Offset Table infomation
  • dyn : Print the Dynamic section infomation
  • findcall : Find some function call
  • bcall : Set the breakpoint at some function call
  • tls : Print the thread local storage address
  • at : Attach by process name
  • findsyscall : Find the syscall
  • fmtarg: Calculate the index of format string
    • You need to stop on printf which has vulnerability.
  • force : Calculate the nb in the house of force.
  • heapinfo : Print some infomation of heap
    • heapinfo (Address of arena)
    • default is the arena of current thread
    • If tcache is enable, it would show infomation of tcache entry
  • heapinfoall : Print some infomation of heap (all threads)
  • arenainfo : Print some infomation of all arena
  • chunkinfo: Print the infomation of chunk
    • chunkinfo (Address of victim)
  • chunkptr : Print the infomation of chunk
    • chunkptr (Address of user ptr)
  • mergeinfo: Print the infomation of merge
    • mergeinfo (Address of victim)
  • printfastbin : Print some infomation of fastbin
  • tracemalloc on : Trace the malloc and free and detect some error .
    • You need to run the process first than tracemalloc on, it will record all of the malloc and free.
    • You can set the DEBUG in pwngdb.py , than it will print all of the malloc and free infomation such as the screeshot.
  • parseheap : Parse heap layout
  • magic : Print useful variable and function in glibc
  • fp : show FILE structure
    • fp (Address of FILE)
  • fpchain: show linked list of FILE
  • orange : Test house of orangecondition in the _IO_flush_lockp
    • orange (Address of FILE)
    • glibc version <= 2.23

安装pwndbg

git clone https://github.com/pwndbg/pwndbg
cd pwndbg
./setup.sh

安装peda

git clone https://github.com/longld/peda.git

安装gef

git clone https://github.com/hugsy/gef.git

pwngdb与pwndbg的联合使用

在home目录下的.gdbinit文件里面是没有pwndbg信息的(如果安装的时候没写进去的话)

cp ~/Pwngdb/.gdbinit ~/            #将pwngdb中的gdbinit文件复制到根目录处

p

还有更多的精彩内容,作者设置为付费后可见
gdb插件, pwngdb, 安装pwngdb, 插件, gef
UltraDebug免责声明
✅以上内容均来自网友转发或原创,如存在侵权请发送到站方邮件9003554@qq.com处理。
✅The above content is forwarded or original by netizens. If there is infringement, please send the email to the destination 9003554@qq.com handle.

相关帖子
回复 打印

使用道具 举报

返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 立即注册

本版积分规则

小黑屋|Archiver|站点地图|UltraDebug ( 滇ICP备2022002049号-2 滇公网安备 53032102000034号)

GMT+8, 2026-2-15 06:34 , Processed in 0.039738 second(s), 11 queries , Redis On.

Powered by Discuz X3.4

© 2001-2023 Discuz! Team.

快速回复 返回顶部 返回列表